JavaScript is required to for searching.
Skip Navigation Links
Exit Print View
Trusted Extensions Configuration Guide     Oracle Solaris 10 8/11 Information Library
Oracle Technology Network
Library
PDF
Print View
Feedback
search filter icon
search icon

Document Information

Preface

1.  Security Planning for Trusted Extensions

2.  Configuration Roadmap for Trusted Extensions

3.  Adding Trusted Extensions Software to the Oracle Solaris OS (Tasks)

4.  Configuring Trusted Extensions (Tasks)

5.  Configuring LDAP for Trusted Extensions (Tasks)

Configuring an LDAP Server on a Trusted Extensions Host (Task Map)

Configuring an LDAP Proxy Server on a Trusted Extensions Host (Task Map)

Configuring the Sun Java System Directory Server on a Trusted Extensions System

Collect Information for the Directory Server for LDAP

Install the Sun Java System Directory Server

Create an LDAP Client for the Directory Server

Configure the Logs for the Sun Java System Directory Server

Configure a Multilevel Port for the Sun Java System Directory Server

Populate the Sun Java System Directory Server

Creating a Trusted Extensions Proxy for an Existing Sun Java System Directory Server

Create an LDAP Proxy Server

Configuring the Solaris Management Console for LDAP (Task Map)

Register LDAP Credentials With the Solaris Management Console

Enable the Solaris Management Console to Accept Network Communications

Edit the LDAP Toolbox in the Solaris Management Console

Verify That the Solaris Management Console Contains Trusted Extensions Information

6.  Configuring a Headless System With Trusted Extensions (Tasks)

A.  Site Security Policy

B.  Using CDE Actions to Install Zones in Trusted Extensions

C.  Configuration Checklist for Trusted Extensions

Glossary

Index

Creating a Trusted Extensions Proxy for an Existing Sun Java System Directory Server

First, you need to add the Trusted Extensions databases to the existing Directory Server on an Oracle Solaris system. Second, to enable Trusted Extensions systems to access the Directory Server, you then need to configure a Trusted Extensions system to be the LDAP proxy server.

Create an LDAP Proxy Server

If an LDAP server already exists at your site, create a proxy server on a Trusted Extensions system.

Before You Begin

You have populated the LDAP server from a client that was modified to set the enableShadowUpdate parameter to TRUE. For the requirement, see Create an LDAP Client for the Directory Server.

In addition, you have added the databases that contain Trusted Extensions information to the LDAP server from a client where the enableShadowUpdate parameter was set to TRUE. For details, see Populate the Sun Java System Directory Server.

  1. On a system that is configured with Trusted Extensions, create a proxy server.

    Note - You must run two ldapclient commands. After you run the ldapclient init command, you then run the ldapclient modify command to set the enableShadowUpdate parameter to TRUE.

    For details, see Chapter 12, Setting Up LDAP Clients (Tasks), in System Administration Guide: Naming and Directory Services (DNS, NIS, and LDAP).

  2. Verify that the Trusted Extensions databases can be viewed by the proxy server.
    # ldaplist -l database

Troubleshooting

For strategies to solve LDAP configuration problems, see Chapter 13, LDAP Troubleshooting (Reference), in System Administration Guide: Naming and Directory Services (DNS, NIS, and LDAP).

Copyright © 1994, 2012, Oracle and/or its affiliates. All rights reserved. Legal Notices
Previous Next